In an environment where multiple users share a single Linux Bastion Host with Rover installed, all the user's TFstate files, cache and authentication tokens are stored in the same volume where all users have access.
This is not ideal from security point of view. Each user's tfstate, cache and authentication tokens should ideally be in the user's home directory where only the user has access.
In an environment where multiple users share a single Linux Bastion Host with Rover installed, all the user's TFstate files, cache and authentication tokens are stored in the same volume where all users have access.
This is not ideal from security point of view. Each user's tfstate, cache and authentication tokens should ideally be in the user's home directory where only the user has access.